The security risk their signing process introduces. My guess would be Signal wants a 0% chance of a malicious client being distributed, hence why they only allow direct apk downloads (which self-updates, essentially making an F Droid build obsolete) and Google Play. I would also guess this is why Signal only packages a deb package (if anyone knows a better way to run Signal desktop on fedora [besides the flatpak] than my current solution of spinning up a Mint Virtual Machine [maybe distrobox?] please let me know!) and literally has no official support for rpm based distributions.
amanneedsamaid
joined 2 years ago
What? Didnt you just dodge-and-cope? 💀
Not usable for the masses imo, Session has always had an issue with dropped message notifications.
The lack of consistently in how Apple devices work, as hey truly feel like a black box where anything beyond basic functionality is held back from the user.
Not having any restricts placed on me as to what software I can install on my devices. Seriously, not allowing sideloading is ridiculous in 2023.
Easy support for the newest Linux desktop technologies, like Wayland and Pipewire. I fun Fedora.
SimpleX > Session > Signal in terms of metadata.
On Signal, your user id is your phone number, a directly identifying piece of information. That is a major point of weakness in terms of metadata reduction, usernames would remedy this significantly.
On Session, your user id is anonymous, a randomized string of numbers and letters. However, this user identifier is persistent, meaning if multiple people were found messaging that single randomized ID, that is data about that user even though it the id is randomized.
On SimpleX (although you do have to option to have a persistent ID on top of using this), every conversation uses a randomized user id you send to your contact via a QR code or link. This means in terms of identifying you're talking to the right person, SimpleX is weaker as if someone hijacks the link, they can impersonate you. The links are one time only, so you have to make sure you transfer the link securely (i.e. QR code via encrypted video call, a message on another secure messenger, or scanning the QR code in person). Once you establish the connection however, SimpleX is a more private experience because of the lack of a persistent user identifer. This also means no spam, ever!
I agree with no proper replacement this will overall have a negative effect. I think the method race-based AA uses was very flawed.
Uninstall the app and use the web version if that's an option for you?
I agree, once SimpleX implements a desktop client, read receipts, and account sync, it will be a great solution for the masses. The mobile apps are incredibly good for how young the project is, so I have high hopes for the desktop client.
Very true, but the client and server code being open and self-hostable makes me slightly less worried about VC than say, Signal.
You can separate economics from race in the context of college admissions, that is not unrealistic.
What a weird response, three paragraphs and absolutely 0 relevant information.